In general you should store whatever data you receive in its original form, and not encoded for a particular output.

Yes, provided that the data is properly validated, e.g. as described in Data Validation (owasp.org).